433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

CVE-2017-11882 Will Never Die, (Wed, Aug 13th)

One of the key messages broadcasted by security professionals is: “Patch, patch and patch again!”. But they are nasty vulnerabilities that remain exploited by attackers even if they are pretty old. %%cve:2017-11882%% is one of them: this remote code execution affects Microsoft Office and, more precisely, the good old “Equation Editor”. This tool was even killed by Microsoft due to numerous security issues[1]. But it still remains used by attackers to spread modern malware.
http://news.poseidon-us.com/TMSTw7

AWS CISO explains how cloud-native security scales with your business

In this Help Net Security interview, Amy Herzog, CISO at AWS, discusses how cloud-native security enables scalable, flexible protection that aligns with how teams build in the cloud. She explains the Shared Responsibility Model and the tools and processes that scale security. Herzog also explains how AI helps automate threat detection and vulnerability management. What does “cloud-native security” mean? Cloud-native security refers to both security controls that work the same way the cloud does and … More → The post AWS CISO explains how cloud-native security scales with your business appeared first on Help Net Security.
http://news.poseidon-us.com/TMSNv7

Product showcase: Apricorn Aegis NVX, a high-security, portable SSD

The Apricorn Aegis NVX is a hardware-based 256-Bit AES XTS external SSD drive with integrated USB-C cable. Its storage capacities range from 500GB to 2TB. The device is OS free and cross-platform compatible. Design and build The drive comes with a compact carry case, a USB-C to USB-A adapter, and a quick start guide. It is enclosed in aircraft-grade aluminum alloy and sealed with tamper-resistant, tamper-evident uni-directional breakaway security fasteners that are driven and cemented … More → The post Product showcase: Apricorn Aegis NVX, a high-security, portable SSD appeared first on Help Net Security.
http://news.poseidon-us.com/TMSNv1

How to build and grow a scalable vCISO practice as an MSP

The cybersecurity needs of small and midsize businesses have reached a critical point. Compliance mandates, increasing ransomware attacks, and cyber insurance requirements are driving demand for expert guidance. Yet, hiring a full-time Chief Information Security Officer (CISO) remains out of reach for many. The growing demand for strategic security leadership – without the cost of a full-time hire- has created a valuable opportunity for MSPs and MSSPs to offer virtual CISO (vCISO) services. In fact, … More → The post How to build and grow a scalable vCISO practice as an MSP appeared first on Help Net Security.
http://news.poseidon-us.com/TMSNqy

Global OT cyber risk could top $329 billion, new report warns

A new study from Dragos and Marsh McLennan puts hard numbers on the global financial risk tied to OT cyber incidents. The 2025 OT Security Financial Risk Report estimates that the most extreme scenarios could place more than $329.5 billion at risk worldwide in a single year. Insurance data shows $329.5B OT cyber risk The analysis is built on a decade of insurance claims and incident data, modeled by Marsh McLennan’s Cyber Risk Intelligence Center. … More → The post Global OT cyber risk could top $329 billion, new report warns appeared first on Help Net Security.
http://news.poseidon-us.com/TMSL1Z

CISOs face a complex tangle of tools, threats, and AI uncertainty

Most organizations are juggling too many tools, struggling with security blind spots, and rushing into AI adoption without governance, according to JumpCloud. he average organization now uses more than nine tools to manage core IT functions. That is fueling a rise in complexity, and with it, security risks. Nearly three-quarters of respondents said their IT environments are difficult to manage. Security gaps were listed as the top problem with tool sprawl, followed by compliance issues … More → The post CISOs face a complex tangle of tools, threats, and AI uncertainty appeared first on Help Net Security.
http://news.poseidon-us.com/TMSL0h

ISC Stormcast For Wednesday, August 13th, 2025 https://isc.sans.edu/podcastdetail/9568, (Wed, Aug 13th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
http://news.poseidon-us.com/TMSHx2